Spa500 Firmware Security Vulnerabilities and Issues — Spa500 Firmware CVE List

Lucene search

CiscoSpa500 Firmware

3 matches found

CVE•added 2016/09/12 1:59 a.m.•74 views

CVE-2016-1469

The HTTP framework on Cisco SPA300, SPA500, and SPA51x devices allows remote attackers to cause a denial of service (device outage) via a series of malformed HTTP requests, aka Bug ID CSCut67385.

7.8CVSS7.4AI score0.01609EPSS

CVE•added 2015/12/15 5:59 a.m.•36 views

CVE-2015-6403

The TFTP implementation on Cisco Small Business SPA30x, SPA50x, SPA51x phones 7.5.7 improperly validates firmware-image file integrity, which allows local users to load a Trojan horse image by leveraging shell access, aka Bug ID CSCut67400.

7.2CVSS6.4AI score0.00091EPSS

CVE•added 2019/02/25 5:29 p.m.•31 views

CVE-2019-1683

A vulnerability in the certificate handling component of the Cisco SPA112, SPA525, and SPA5X5 Series IP Phones could allow an unauthenticated, remote attacker to listen to or control some aspects of a Transport Level Security (TLS)-encrypted Session Initiation Protocol (SIP) conversation. The vulne...

7.4CVSS6.8AI score0.00172EPSS